github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
605 Commits
34 Branches
230 Tags
19 MiB
Commit Graph

159 Commits (b14257f27fcef78a399ed0ef1611813c725337ed)

Author SHA1 Message Date
Yaroslav Halchenko b14257f27f BF: Thanks to insights from Rogerio -- handle both aInfo and cInfo and replicate cmds if no key provided 2011-04-28 23:06:27 -04:00
Yaroslav Halchenko 28b44d2655 NF: Mockup for handling complex additional Init parameters in actions 
So we could have substitutions tags chosen according to values of other tags,
e.g. in this case ipv (IP version) tag would be added by fail2ban
internally

novo# grep  -e '^[^#]' /etc/fail2ban/action.d/iptables-multiport.conf
[Definition]
actionstart = <actioncmd> -N fail2ban-<name>
              <actioncmd> -A fail2ban-<name> -j RETURN
              <actioncmd> -I <chain> -p <protocol> -m multiport --dports <port> -j fail2ban-<name>
actionstop = <actioncmd> -D <chain> -p <protocol> -m multiport --dports <port> -j fail2ban-<name>
             <actioncmd> -F fail2ban-<name>
             <actioncmd> -X fail2ban-<name>
actioncheck = <actioncmd> -n -L <chain> | grep -q fail2ban-<name>
actionban = <actioncmd> -I fail2ban-<name> 1 -s <ip> -j DROP
actionunban = <actioncmd> -D fail2ban-<name> -s <ip> -j DROP

[Init]
name = default
port = ssh
protocol = tcp
chain = INPUT
actioncmd/ipv = 4="iptables", 6="ip6tables"
 2011-04-27 22:54:03 -04:00
Yaroslav Halchenko 12304f7a3e Tai64N stores time in GMT, we need to convert to local time before returning 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@764 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2010-09-27 13:10:40 +00:00
Yaroslav Halchenko 2a38820ed6 debug entry for lines ignored due to falling below findtime (v2) 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@763 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2010-09-21 17:52:44 +00:00
Arturo 'Buanzo' Busleiman 7aad6685af added time module. bug reported in buanzo's blog at http://blogs.buanzo.com.ar/2009/04/fail2ban-patch-ban-ip-address-manually.html 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@758 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2010-03-04 17:15:12 +00:00
Cyril Jaquier 8007a02539 - Patch to make log file descriptors cloexec to stop leaking file descriptors on 
fork/exec. Thanks to Jonathan Underwood. https://bugzilla.redhat.com/show_bug.cgi?id=230191#c24

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@757 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-12-15 22:57:54 +00:00
Cyril Jaquier a3d6ae19f6 - Check the inode number for rotation in addition to checking the first line of the file. Thanks to Jonathan Kamens. 
- Red Hat Bugzilla - Bug 503852
- SF.net Bug #2800279.

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@752 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-09-01 21:21:30 +00:00
Arturo 'Buanzo' Busleiman 3e3a68f9de added traceback to asyncserver.py's import. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@750 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-09-01 17:33:04 +00:00
Arturo 'Buanzo' Busleiman 5945ca09ae moved logging shutdown out of quit(), into end of start() in server.py 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@748 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-31 14:14:02 +00:00
Arturo 'Buanzo' Busleiman a1a106a27e added "Ban IP" command to fail2ban branch 0.8 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@745 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 18:26:15 +00:00
Cyril Jaquier b88956e898 - Added helper module in common. 
- Moved formatExceptionInfo by Buanzo to common/helpers.py.

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@740 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 14:03:18 +00:00
Arturo 'Buanzo' Busleiman 81e2fe8306 added 'unexpected communication error' fix to ChangeLog. Added formatExceptionInfo to server/asyncserver.py 
We should move that function to a helpers module.


git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@739 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 13:51:17 +00:00
Arturo 'Buanzo' Busleiman b2f0bfe751 added missing import sys to asyncserver.py 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@738 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 13:36:04 +00:00
Arturo 'Buanzo' Busleiman 08a36ca657 more readable code for python version comparison 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@737 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 13:32:19 +00:00
Arturo 'Buanzo' Busleiman fd898c9eac added python version detection to asyncore.loop(use_poll=True|False) 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@736 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 13:27:52 +00:00
Arturo 'Buanzo' Busleiman e09fad559a Fix for python 2.6 / 3.0 incompatibility 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@735 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-08-30 00:36:40 +00:00
Cyril Jaquier 0cf733e878 - Fixed maxretry/findtime rate. Many thanks to Christos Psonis. Tracker #2019714. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@731 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-02-09 22:08:21 +00:00
Cyril Jaquier 3155bc8f03 - Use timetuple instead of utctimetuple for ISO 8601. Maybe not a 100% correct fix but seems to work. Tracker #2500276. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@729 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-02-08 19:50:44 +00:00
Cyril Jaquier abd061bad8 - Changed <HOST> template to be more restrictive. Debian bug #514163. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@728 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-02-08 17:31:24 +00:00
Cyril Jaquier 6b9896c332 - Added CPanel date format. Thanks to David Collins. Tracker #1967610. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@722 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-01-27 23:21:55 +00:00
Cyril Jaquier 024a77a679 - Removed print. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@720 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-01-20 23:08:59 +00:00
Cyril Jaquier 870f9d9ea7 - Removed begin-line anchor for "standard" timestamp. Fixed Debian bug #500824. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@719 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2009-01-20 21:48:04 +00:00
Cyril Jaquier f6d44e6bc8 - Added new time format. No idea from where it comes... 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@714 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-10-10 16:26:18 +00:00
Cyril Jaquier 6ee4843d11 - Try to match the regex even if the line does not contain a valid date/time. Described in Debian #491253. Thanks to Yaroslav Halchenko. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@712 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-08-12 22:40:07 +00:00
Cyril Jaquier 9e2a4a935a - Added date template for Day-Month-Year Hour:Minute:Second. 
- Values as string are shown in capital in the description.


git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@710 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-08-12 21:42:21 +00:00
Cyril Jaquier e064ebba45 - Added date pattern for Hour:Minute:Second. Thanks to Andreas Itzchak Rehberg. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@709 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-08-12 20:59:17 +00:00
Cyril Jaquier b26f9ca97a - Use current day and month instead of Jan 1st if both are not available in the log. Thanks to Andreas Itzchak Rehberg. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@708 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-08-12 20:51:55 +00:00
Cyril Jaquier cc62cd7076 - Use poll instead of select in asyncore.loop. This should solve the "Unknown error 514". Thanks to Michael Geiger and Klaus Lehmann. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@700 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-07-14 21:56:07 +00:00
Cyril Jaquier 8da2fe515a - Added and changed some logging level and messages. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@696 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-05-19 21:05:32 +00:00
Cyril Jaquier 298adc4d43 - Added ISO 8601 date/time format. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@692 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-05-18 19:53:18 +00:00
Cyril Jaquier 46dab37bfe - Added "Day/Month/Year Hour:Minute:Second" date template. Thanks to Dennis Winter. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@685 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-04-07 22:49:47 +00:00
Cyril Jaquier 56357d18df - Changed some log level. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@682 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-04-07 22:25:16 +00:00
Cyril Jaquier b757c08f40 - Fixed "fail2ban-client get <jail> logpath". Bug #1916986. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@681 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-03-17 23:18:07 +00:00
Cyril Jaquier b174a2e858 - Fixed PID file while started in daemon mode. Thanks to Christian Jobic who submitted a similar patch. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@680 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-03-13 21:40:16 +00:00
Cyril Jaquier d645a8fe47 - Process failtickets as long as failmanager is not empty. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@676 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-03-06 00:21:52 +00:00
Cyril Jaquier 174ce7027a - Fixed fail2ban-regex. It support "includes" in configuration files. 
- Modified "includes" to be more generic. We will probably support URL in the future.
- Small refactoring.

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@656 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-03-04 00:17:56 +00:00
Cyril Jaquier 799f5977c5 - Fixed "Feb 29" bug. Thanks to James Andrewartha who pointed this out. Thanks to Yaroslav Halchenko for the fix. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@652 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-02-28 23:01:30 +00:00
Cyril Jaquier bcdb428e1b - Added missing argument. 
- Fixed use of FileContainer in filterpoll.py.

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@649 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-02-02 17:04:11 +00:00
Cyril Jaquier 9163e5b61b - Removed debug message. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@648 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-02-02 16:59:45 +00:00
Cyril Jaquier ae26b901ab - Create a PID file in /var/run/fail2ban/. Thanks to Julien Perez. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@647 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-01-20 16:30:35 +00:00
Cyril Jaquier 7091cb39e4 - Small refactoring. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@645 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-01-16 22:55:04 +00:00
Cyril Jaquier 695b6b1fe5 - New log rotation detection algorithm. 
- Print monitored files in status.

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@644 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-01-14 23:12:21 +00:00
Cyril Jaquier 2703c8ebb9 - Show version at startup. Thanks to Klaus Lehmann. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@643 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-01-13 15:49:23 +00:00
Cyril Jaquier 7db7967ab1 - Added string and regex to log message. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@642 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2008-01-05 22:33:44 +00:00
Cyril Jaquier 65dcbed591 - Split Filter into Filter and FileFilter. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@641 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-26 11:46:22 +00:00
Cyril Jaquier 9199e02853 - Removed unused regular expression. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@640 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-19 22:50:47 +00:00
Cyril Jaquier adcc2ef386 - Removed user-defined time regex/pattern. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@639 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-17 20:04:29 +00:00
Cyril Jaquier eae650fdfc - Refactoring. Merged failticket and banticket into ticket. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@638 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-17 20:00:36 +00:00
Cyril Jaquier bad9821b14 - Increment counter internally. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@637 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-17 19:57:19 +00:00
Cyril Jaquier 379aa2f855 - Display a message if we could not bind the socket. 
git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_8@636 a942ae1a-1317-0410-a47c-b1dcaea8d605
 2007-12-17 19:53:33 +00:00